Fix versions for changes in required_fileds

Author: shashank-elastic

rules/windows/defense_evasion_clearing_windows_security_logs.toml

@@ -2,7 +2,9 @@
 creation_date = "2020/11/12"
 integration = ["system", "windows"]
 maturity = "production"
-updated_date = "2025/03/20"
+updated_date = "2025/04/23"
+min_stack_version = "9.0.0"
+min_stack_comments = "Required ecs filed winlog.api type change in version 9.0.0"
 
 [rule]
 author = ["Elastic", "Anabella Cristaldi"]

rules/windows/execution_windows_script_from_internet.toml

@@ -2,9 +2,9 @@
 creation_date = "2025/01/31"
 integration = ["endpoint"]
 maturity = "production"
-min_stack_comments = "Mark of The Web enrichment was added to Elastic Defend file events in 8.15.0."
-min_stack_version = "8.15.0"
-updated_date = "2025/02/14"
+updated_date = "2025/04/23"
+min_stack_version = "9.0.0"
+min_stack_comments = "Required ecs filed file.origin_referrer_url,file.origin_url type change in version 9.0.0"
 
 [rule]
 author = ["Elastic"]

rules/windows/persistence_group_modification_by_system.toml

@@ -2,7 +2,9 @@
 creation_date = "2024/06/26"
 integration = ["system", "windows"]
 maturity = "production"
-updated_date = "2025/03/20"
+updated_date = "2025/04/23"
+min_stack_version = "9.0.0"
+min_stack_comments = "Required ecs filed winlog.api type change in version 9.0.0"
 
 [rule]
 author = ["Elastic"]

rules/windows/persistence_user_account_added_to_privileged_group_ad.toml

@@ -2,7 +2,9 @@
 creation_date = "2021/01/09"
 integration = ["system", "windows"]
 maturity = "production"
-updated_date = "2025/03/20"
+updated_date = "2025/04/23"
+min_stack_version = "9.0.0"
+min_stack_comments = "Required ecs filed winlog.api type change in version 9.0.0"
 
 [rule]
 author = ["Elastic", "Skoetting"]